Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 6, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 226331 | 8.8 | 危険 | visagesoft | - | VISAGESOFT eXPert PDF Viewer X ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-4919 | 2012-12-20 18:52 | 2008-11-4 | Show | GitHub Exploit DB Packet Storm |
| 226332 | 4.3 | 警告 | SonicWALL | - | SonicWALL Pro 2040 などで使用されている SonicWALL SonicOS Enhanced におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4918 | 2012-12-20 18:52 | 2008-11-4 | Show | GitHub Exploit DB Packet Storm |
| 226333 | 7.5 | 危険 | rs maxsoft | - | RS MAXSOFT の fotogalerie モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4912 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 226334 | 10 | 危険 | サン・マイクロシステムズ | - | Sun Java Web Start の BasicService におけるクライアントマシン上で任意のプログラムを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-4910 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 226335 | 7.5 | 危険 | w1n78 | - | e107 用の Lyrics プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4906 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 226336 | 5 | 警告 | typosphere | - | Typo におけるパスワードを推測される脆弱性 |
CWE-310
暗号の問題 |
CVE-2008-4905 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 226337 | 6 | 警告 | typosphere | - | Typo の "ページを管理する" 機能における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4904 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 226338 | 4.3 | 警告 | typosphere | - | Typo のコメントを残す機能におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4903 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 226339 | 7.5 | 危険 | scripts frenzy | - | Article Publisher Pro の contact_author.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4902 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
| 226340 | 7.5 | 危険 | scripts frenzy | - | Article Publisher Pro の admin/admin.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4901 | 2012-12-20 18:52 | 2008-11-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 197791 | 7.5 |
HIGH
Network |
cisco | ios_xe | A vulnerability in the packet filtering features of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to bypass L3 and L4 traffic filters. The vulnerability is due to improper tra… |
NVD-CWE-noinfo
|
CVE-2020-3444 | 2024-11-21 14:31 | 2020-11-7 | Show | GitHub Exploit DB Packet Storm |
| 197792 | 7.5 |
HIGH
Network |
qualcomm |
agatti_firmware apq8009_firmware apq8017_firmware apq8053_firmware ar9344_firmware bitra_firmware ipq5018_firmware kamorta_firmware mdm9607_firmware mdm9640_firmware mdm… |
u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to … |
CWE-667
Improper Locking |
CVE-2020-3704 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 197793 | 7.8 |
HIGH
Local |
qualcomm |
bitra_firmware nicobar_firmware saipan_firmware sm6150_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
u'Use out of range pointer issue can occur due to incorrect buffer range check during the execution of qseecom' in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Voice & Music in … |
NVD-CWE-Other
|
CVE-2020-3694 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 197794 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware kamorta_firmware qcs404_firmware qcs605_firmware sda845_firmware sdm670_firmware sdm710_firmware sdm845_firmware sxr1130_firmware |
u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdra… |
CWE-120
Classic Buffer Overflow |
CVE-2020-3678 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 197795 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8053_firmware apq8076_firmware ar9344_firmware bitra_firmware kamorta_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware msm8917_firmware m… |
u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-3703 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 197796 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware mdm9206_firmware<… |
u'Use after free while installing new security rule in ipcrtr as old one is deleted and this rule could still be in use for checking security permission for particular process' in Snapdragon Auto, Sn… |
CWE-416
Use After Free |
CVE-2020-3696 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 197797 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8098_firmware bitra_firmware msm8909w_firmware msm8996au_firmware nicobar_firmware qcm2150_firmware qcs605_firmware
u'Use out of range pointer issue can occur due to incorrect buffer range check during the execution of qseecom.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial…
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2020-3693
|
2024-11-21 14:31 |
2020-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 197798 | 9.8 |
CRITICAL
Network |
qualcomm |
agatti_firmware kamorta_firmware nicobar_firmware qcm6125_firmware qcs610_firmware rennell_firmware sa415m_firmware saipan_firmware sc7180_firmware sc8180x_firmware sdx2… |
u'Possible buffer overflow while updating output buffer for IMEI and Gateway Address due to lack of check of input validation for parameters received from server' in Snapdragon Auto, Snapdragon Compu… |
CWE-120
Classic Buffer Overflow |
CVE-2020-3692 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 197799 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware bitra_firmware kamorta_firmware nicobar_firmware qca6390_firmware qcs404_firmware qcs605_firmware qcs610_firmware rennell_firmware sa415m_firmware sa515m… |
u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, … |
NVD-CWE-Other
|
CVE-2020-3690 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 197800 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware apq8009_firmware apq8098_firmware bitra_firmware ipq6018_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware md… |
u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Sn… |
NVD-CWE-Other
|
CVE-2020-3684 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |